Hi All,
I have 4 servers with Remote Desktop Services installed and using Remote Application. One one of the servers has IIS Installed for RDWEB and also RD Gateway and the rest have the . All are running Server 2008 R2.
Now, everything was working fine. I was able to install and publish applications to RDWeb and successfully launch them by connecting to RDWeb on the GW server. All Session Hosts were pointing to the RD Gateway and that wasn't breaking anything, but I wasn't able to see any active connections in the RD Gateway server when connecting through RDWeb, instead I saw they were connecting to the application servers themselves.
Yesterday I installed a wildcard certificate for my domain on the RD Gateway/Web server and was successfully able to connect to https://remoteapp.mydomain.com/RDWeb and launch the applications as per normal. But I still wasn't able to see any active connections in RD Gateway Manager.
So I tried connecting to one of the application servers through Remote Desktop and specified the Remote Desktop Gateway. I received a prompt for my username and password to both the Gateway and Application server, however I was denied every time. There appeared to be nothing in Event Viewer except for successful audits. I did some googling and found that perhaps my the redirection I put in place from https://remoteapp.mydomain.com to https://remoteapp.mydomain.com/RDWeb was breaking the authentication, so I removed it. I also looked at the "RpcWithCert" site in IIS and enabled both Basic and Windows authentication.
That's when all hell broke loose. I was no longer able to access RDWeb and every time I receive the following error:
[b]403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.[/b]
I was at a loss as to why this was and started looking through IIS and was able to find nothing. Curiously though I was able to access https://remoteapp.mydomain.com/RDWeb/pages/en-US/login.aspx?ReturnUrl=default.aspx and login successfully, so assumingly I broke something pretty important when I removed the redirection.
But now there's another problem: I can no longer see my applications!! I have checked "Remote App Manager" on the application server and can see the application is there and is published through RDWeb. When I look at Server Manager on the RD Gateway/RDWeb server, under Roles > Remote Desktop Services I see there are a whole heap of errors trying to connect to my application server:
Error
Event ID: 8
Source: RADWebAccess
RD Web Access was not able to access the RD Session Host server application1.mydomain.com. Verify that the computer account of the RD Web Access server is added to the TS Web Access Computers security group on the RD Session Host server.
Of course I originally added all the required entries to the "TS Web Access Computers" security group previously and nothing has changed.
I am at a complete loss as to what I have broken and how I go about fixing it :(
If anyone can provide some further insight I would be most appreciative! I understand I may not have been very clear in my explanation so if you require any further information please ask and I was respond straight away.
Cheers
I have 4 servers with Remote Desktop Services installed and using Remote Application. One one of the servers has IIS Installed for RDWEB and also RD Gateway and the rest have the . All are running Server 2008 R2.
Now, everything was working fine. I was able to install and publish applications to RDWeb and successfully launch them by connecting to RDWeb on the GW server. All Session Hosts were pointing to the RD Gateway and that wasn't breaking anything, but I wasn't able to see any active connections in the RD Gateway server when connecting through RDWeb, instead I saw they were connecting to the application servers themselves.
Yesterday I installed a wildcard certificate for my domain on the RD Gateway/Web server and was successfully able to connect to https://remoteapp.mydomain.com/RDWeb and launch the applications as per normal. But I still wasn't able to see any active connections in RD Gateway Manager.
So I tried connecting to one of the application servers through Remote Desktop and specified the Remote Desktop Gateway. I received a prompt for my username and password to both the Gateway and Application server, however I was denied every time. There appeared to be nothing in Event Viewer except for successful audits. I did some googling and found that perhaps my the redirection I put in place from https://remoteapp.mydomain.com to https://remoteapp.mydomain.com/RDWeb was breaking the authentication, so I removed it. I also looked at the "RpcWithCert" site in IIS and enabled both Basic and Windows authentication.
That's when all hell broke loose. I was no longer able to access RDWeb and every time I receive the following error:
[b]403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.[/b]
I was at a loss as to why this was and started looking through IIS and was able to find nothing. Curiously though I was able to access https://remoteapp.mydomain.com/RDWeb/pages/en-US/login.aspx?ReturnUrl=default.aspx and login successfully, so assumingly I broke something pretty important when I removed the redirection.
But now there's another problem: I can no longer see my applications!! I have checked "Remote App Manager" on the application server and can see the application is there and is published through RDWeb. When I look at Server Manager on the RD Gateway/RDWeb server, under Roles > Remote Desktop Services I see there are a whole heap of errors trying to connect to my application server:
Error
Event ID: 8
Source: RADWebAccess
RD Web Access was not able to access the RD Session Host server application1.mydomain.com. Verify that the computer account of the RD Web Access server is added to the TS Web Access Computers security group on the RD Session Host server.
Of course I originally added all the required entries to the "TS Web Access Computers" security group previously and nothing has changed.
I am at a complete loss as to what I have broken and how I go about fixing it :(
If anyone can provide some further insight I would be most appreciative! I understand I may not have been very clear in my explanation so if you require any further information please ask and I was respond straight away.
Cheers